shoebottom.ca-nginx/dynmap.conf
2022-10-07 00:40:05 -03:00

42 lines
1.5 KiB
Plaintext

server {
server_name dynmap.shoebottom.ca;
ssl_certificate /etc/letsencrypt/live/dynmap.shoebottom.ca/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/dynmap.shoebottom.ca/privkey.pem;
location / {
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://127.0.0.1:8123/;
}
listen [::]:443 ssl; # managed by Certbot
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/dynmap.shoebottom.ca/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/dynmap.shoebottom.ca/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
add_header X-Frame-Options "SAMEORIGIN";
add_header X-XSS-Protection "1; mode=block";
add_header X-Content-Type-Options "nosniff";
add_header Strict-Transport-Security "max-age=31536000" always; # managed by Certbot
ssl_trusted_certificate /etc/letsencrypt/live/dynmap.shoebottom.ca/chain.pem; # managed by Certbot
ssl_stapling on; # managed by Certbot
ssl_stapling_verify on; # managed by Certbot
}
server {
if ($host = dynmap.shoebottom.ca) {
return 301 https://$host$request_uri;
} # managed by Certbot
listen 80;
listen [::]:80;
server_name dynmap.shoebottom.ca;
# Uncomment to redirect HTTP to HTTPS
return 301 https://$host$request_uri;
}